SEP-09-2004 15:36 



SCULLY SCOTT 



5167424366 P. 07/21 



LISTING OF THE CLAIMS: 

1 . (Cuitently Amended) A mediod for securely handling an infonnation unit by a first 
information processing device (2) interoperatiiig with a second secure information processing 
device (1), whereby the infonnation unit is provided by an issuer* 

the method comprising the steps: 

transmitting (3, 25, 35) the infonnation uni t, in on oncr^iptod form, from the first issuer to 
the first information processing device (2 ), the information unit being processed bv a 
crvDtoizraphic Drocess: 

providing th e oooond s e cur e information proo e ofling dovico with at least one key for use ia 
d e or^Tptmg th e infonnation unit for the crvotoeraphic p rocess on the second secure iTifnTmfltinn 
processing device (H: aad 

the first infonnation processing device (i) receiving the at least one key from the second 
information processing device, and (ii) crvptograohicaUv reprocessing (29, 38) deorypting the 
infonnation unit by using the at least one key; 

providing (3, 25, 35^ the in fonnation unit from the issuer to the first informatinn 
processing device (2)., the informat ion unit being encrypted bv using at least a first key: 

providing the first key from the issuer to the first infbxmatiQn processing device {2\ the 
first kev being encrypted bv using at least a second kev: 

providing the at least one second key on the second secure information processing device 
f n: and 

wherein at least a third kevis p rovided for external authentication and/or release control of 
the respective iTifprmation unit , 
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aaim2(CaiiceUed). 

3. (Qrigmal) The method accoiding to claim 1, comprising: 

providing (3, 25, 35) the infomiation unit ftom the issuer to the first information 
processing device (2), the infomiation unit being signed by using a signature; 

providing the signature fiom the issuer to the first information processing device (2), the 
signature being generated by using at least one key; 

providing the at least one key for signature verification on the second secure information 
processing device (1); 

interconnecting the iirst information processing device (2) and the second secure 
information processing device (1); 

transferring the at least one key for signature verification fi-om the second secure 
information processing device to the first information pn^cessing device; and 

verifying the signature of the information unit by using the at least one key, 

4. (Currently Amended) The method according to claim 2 h wherein the decrypted at 
least first key is transferred to the first information processing device (2) and the information unit 
is decrypted (29) on side of the first device (2). 

5 . (Original) The method according to claim 1 , wherein the first infi)rmation processing 
device (2) provides a control conmaand (26, 36) to the second secure information processing 
device (1) to initiate decryption of the at least first key by using the at least second key and/or to 

3 G:\Ibin\105\1264a\AMCND\l2640.Bin3.doc 



PAGE 8/21 ' RCVD AT 9(9/2004 3:22:19 PM [Eastern Dayflght Time] ' SVR:USPT0-EFXRP-1/2 ' DNIS:8729306 ' CSID:5167424356 ' DURATION (inin-ss):Q4-52 



SEP-09-2004 15:37 SCULLY SCOTT 



5167424366 P. 09/21 



initiate transferring the signature key for signature verification fiom the second secure device to 
the first device. 

6. (CMginal) The method according to claim 5, wherdn the encrypted information unit, 
the encrypted first key» and/or the signature key, and/or the generated signature, and/or the control 
command are downloaded (25, 35) from a central server (4). 

7. (Original) The method according to claim 3, wherein the second key and/or the key for 
signature verification aie^s securely stored on the second secure device (1) at time of its issuing 
by the issuer. 

Claims, (Cancelled). 

9, (Currently Amended) The method according to claim ^l^wheidn the first device (2)^ 
initiated to gather a new release of the information unit fit)m the issuer, depending on the 
respective status of the third key. 

10, (Original) The method according to claim 9, wherein the new release of the 
information unit is downloaded fiom an internet server (4) provided by the issuer* 
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11. (Currently Amended) The method according to claim 2 1, wherein the at least first 
key and/or the signature are/is randomized between different sessions of providing the 
information unit firon the issuer to the first device (2). 

1 2. (Original) The method according to claim 1 , wherein the first infomiation processing 
device (2) is a terminal device, and the second secure information processing device (1) is a 
portable device. 

13. (Origitial) The method according to claim 12, wherein the terminal device is a chip 
card reader and the portable device is a chip card. 

14. (CuitentlyAmended) A system for securely handling aninformationumt»com^^ 

a first information processing device (2) interoperating with a second secure information 
processing device (1), the infbnnation unit being provided by an issuer^ comprising: 
Ihe first device (2) comprising 

a storage for storing the information uni t encrypted bv using at least a first key, 
and a storage for storing the first key, encrypted by using at least a second key in an encffvpt e d 
form ; and 

the second secure device (1) comprising 

a storage (6) for storing at l e ast on e key for use in decrypting the information unit 
the at least pp^j^ s^ndkey^ and processing means for decrypting the at least first kevbv using the 
at least second kev: md 
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the first device finther coitiprismg (i) means for receiving the at least one key fiom 
tiie second information processing device, and (ii) means for decrypting the information imit by 
using the at least one ke vLand 

wherein the first device (2) and/or tfac second secme device f 1 ) comprises a 
storage (6) for storing at least a third key for external authentication and/or release control of the 
information unit and processing mmnR (7) f or processin p; th^ thirH Ir^y 

15. (Cancelled), 

16. (Currently Amended) Hie system according to claim 14, wherein 
the first device (2) comprises 

a storage for storing th e information unit md a signature for the information unit; 
the second secure device (1) comprises 

a storage (6) for storing at least one signature key; 

providing means for verifying the signature of the information unit by using the at 
least one signature key, 

17. (Original) The system according to daim 14, wherein the second secure device (1) 
provides an access control by means of the information unit 
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18. (Original) The system according to claim 14, wherein the second secure device (1) 
comprises a processor to make specific functions of the second secure device usable/aocessible on 
the first device or on at least a third device (5) attached to the first device, 

19* (Original) The system according to claim 14, wherein the first device (2) comprises 
processing means for decrypting (29) the infoimation unit by use of the deciypted at least first 
key. 

20. (Original) The system according to claim 14, wherein the second secure device (1) 
comprises means to initiate decryption of the at least first key by using the at least second key 
and/or means to initiate transfer of the signature key for signature verification fi-om the second 
secure device to the first device. 

21 . (Original) The system according to claim 14, wherem the first device (2) comprises 
means to download the encrypted information unit, the encrypted first key, and/or the generated 
signature, and/or the control command^ fix)m a central server (4). 

22. (Original) The system according to claim 14» wherein the second secure device (1) 
comprises a non-erasable storage to store the second key and/or the signature key at time of its 
issuing. 

Claim 23. (Cancelled) 
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24, (Currentiy Amended) The system according to claim 3^14, wherein the first device 

(2) <»mprises means to initiate downJoadof anew rdeaseof the infoimation unit, dependingon 
the respective status of the third key. 

25. (Original) The system according to daim 21, wherein the central server (4) comprises 
arandomizer for randomisnng the at least first key and/or the signatoe between different sessions 
of providing the infomiation mjit fixttn the issua- to the first device. 



26. (Original) The system according to claim 14, wheicin the first infomiation processing 
device (2) is a teiminal device, and the second secure information processing device (1) is a 
portable device. 

27. (Original) The system according to daim 26, wherein the temiinal device is a drip 
card reader and the portable device is a chip card. 



28. (Cuirently Amended) A chip card (1) for securdy handling an information unit by 
interoperating with an information handhng teraiinal device (2), comprising a storage (6) for 
storing an at least one Iseiy for us e in dooryptinfi the information unit a crvptotsraphic process, and 
means for transmitting the at least one key to said handling terminal device to enable said device 
to doorypt the crvDtographicallvproces.s an information unit received by said device in an 
caicryptod foim from an issuer; 
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wherein aprocesaor m runs specific fu nctions on the tenninal device (2. 5^ or on at least 
g second device attached to the terminal device (2. S): 

further comprising mea ns for transferring of at least one second kev to the terminal device 
(2. 5) and/or meana for decrvpting of the at least first kev bvnsing the at least second key and/or 
means to iniriate tra nsfer of the signature kev for signature verification: 

wherein a noH'^asable storage f 6) stores the second kev and/or the signature key at time 
of its issuing: and 

further comprising a storage (6) for storing at least a third kev external authentication 
and/or release control of the information unit and processing j neanR (7) fpr processing the third 
kev . 

29. (Original) The chip card according to claim 28, wherein processing means (7) 
performing an access control is controlled by an information unit. 

Claims 30-33 (Cancelled), 

34. (Currently Amended) The chip card according to claim ^ wherein said 
processing means (7) initiates download of a new release of the information unit, depending on 
the respective status of the third key. 
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35, (Cuirently Amended) A chip card accepting device (2), for securely haiuiling an 
infonnatian uni t, r e ooivod by the acoopting dorioo in m onorjiptod foim, by interoperating with a 
chip card (1)^ comprising: 

a storage for storing the infomiation unit in on ancirypted form,; 

means for receiving at least one first key for uao in dooryptinfi tfao information unit fiom a 
chip card, 

means for crvDtogrqBhicallv reprocessing d e crypting the information unit by using the at 

least one first key keys: 

means for re ceiving at least one second kev far decrypting tbe first key: and 

a storage for storing at least a third key for external authenticatjon and/or release control 

of the infor mation uni t and processing means for processing the third key . 

Claim 36. (Cancelled). 

37- (Original) Hie chip card accepting device according to claim 36, further comprising 
means for verifying a digital signature. 

38. (Cuiiently Amended) A T^e chip card accepting device flccnrding to Claim 
further comprising! (2\ for aocur e ly handling nn Tn^nrmnrinti iitii't >iy I'ntftrrtpmtingT^^th e-eh^ 
Qord (1)» comprioing 

a qtorogo for storing th e infonnotion unit- 

meanfl for r e ooi\ing at l e ast one key fi-om a ohip cord} 

1 0 G:Mbiii\105M2640\AMEND\12640,amS.doc 



PAGE 15/21 * RCVD AT 9/§12004 3:22:19 PM [Eastern Daylight Time] * SVR:USPT0-EFXRF-1/2 * DNIS:8729306 * CSID:51 67424366 * DURATION (mm-ss):04-52 



SEP-09-2004 15:3a 



SCULLY SCOTT 



5167424366 P. 16/21 



m e ans for oryptogrophioally reproooasing th e infonnotion unit by uoing tho at loaat oa e 

means for decrypting the information imit by using at least one key; 
means for verifyiDg a digital signature; and 

means for downloading the encrypted infoimation umt> the at least one key and the digital 
signature from a cwtral server (4). 

Claim 39 (Cancelled). 

40- (Original) The chip card accepting device according to claim 39, fiirther comprising 
means to initiate download of a new release of the information unit, depending on the respective 
status of the third key. 

4L (Currently Amended) A program storage device readable by machine, tangibly 
embodying a program of instructions executable by the machine to perform method steps for 
securely handling an information unit by a first infomiation processing device (2) interoperating 
with a second secure infioimation processing device (1)^ whereby the information unit is provided 
by an issuer, said method steps comprising: 

transmitting (3, 25, 35) the information unit, in an encrypted form, flom the issuer to the 
first infomiation processing device (2) , the information unit being processed by a cryptographic 
process: 
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providing th e o e oond oooaro infbimation prociogj i iia de^ico with at least one key for fee 
m e in doaryptingtho information mi l the cryptographic p mr ^ on tfae second securemformatinn 
processing device (lY. md 

the first iufonnation processing device (i) receiving the at least one key fiom the second 
infonnation processing device» and (ii) crvptoeraphicall y reprocessing f20 ^«\ deeiyptiflg Ae 
infonnation unit by using the at least one keyi 

ETOvidinR (3, 25, 35) the infonnation noit fipm th^ issuer to the first infomiatinn 
BTQCessing device (2Y the infermatinn x tait being encrypted bv using at least a first Icey^ 

providing the first kev from the i ssuer to <he first information processing device (2^. the 
first key be ing gicrypted bv using at least a second kev. 

providing the at least one second kev on the s econd secure information processing device 
fn: and 

wherein at least a third kev is provided for extanal authaiticadon and/orielease contml of 
the respective infonnation unit 

Claim 42 (Cancelled). 

43. (Previously Presented) A program storage device accoiding to claim 41 , said m^od 
steps further comprising: 

providing (3, 25, 35) the infonnation unit from the issuer to the first information 
processing device (2), the infonnation unit being signed by using a signature; 
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providing the signature ftran the issuer to the first infimnation processing device (2), the 
signature being generated by using at least one key; 

providing the at least one key for signature verification on the second secure information 
processing device (1); 

interconnecting the first information processing device (2) and the second secure 
information processing device (1); 

transferring Hxe at least one key for signature verification from the second secure 
information processing device to the first information processing device to the first information 
processing device; and 

verifying the signature of the information unit by using the at least one key. 
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